### [CVE-2023-3664](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3664)
![](https://img.shields.io/static/v1?label=Product&message=FileOrganizer&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-284%20Improper%20Access%20Control&color=brighgreen)

### Description

The FileOrganizer WordPress plugin through 1.0.2 does not restrict functionality on multisite instances, allowing site admins to gain full control over the server.

### POC

#### Reference
- https://wpscan.com/vulnerability/d59e6eac-3ebf-40e0-800c-8cbef345423f

#### Github
No PoCs found on GitHub currently.